PCI Data Security Standard

PCI DSS

The Payment Card Industry Data Security Standard (PCI DSS) was developed to enhance cardholder data security measures across the world. The PCI DSS provides a baseline for your technical and operational controls designed to protect your customer’s payment data.

The PCI DSS applies to all entities involved in payment card processing, including merchants, processors, acquirers, issuers, and service providers. The PCI DSS also applies to all other entities that store, process or transmit cardholder data.

Qualified Security Assessors

To guide our clients through the extensive requirements of the PCI DSS, we maintain a dedicated team of PCI DSS Qualified Security Assessors (QSA). Our QSA team is engaged by retail brands, payment service providers, and FTSE 100 companies (including commercial and domestic energy), to provide experienced Qualified Security Assessors that understand complex technical environments in fast-paced industries.

Our Team

Our team has vast operational experience with modern technologies, including containerised and virtualised environments, and is used to providing security advice to everybody from first line support, through to the C-Suite.

Alongside our delivery work, we frequently publish security articles, white papers, and case studies, as well as evidence for research and government.

Data Driven

Crucially, we believe that rationalised information assurance policies – driven by evidence and data, rather than hyperbole and fear – are the best way to improve our clients’ security capabilities.

Contact Us

Send us a Message









Data Protection Project
GDPR Gap Analysis/Audit/Review
Outsourced Privacy Officer/DPO
Support Desk
SAR Support
PCI DSS
ISO27001/27701
Cyber Maturity Assessment
NIS Regulations
Information Governance Documentation
DataWise System
Other

We are always happy to make contact with you by either phone, email or a face to face meeting at our office or yours. We work standard UK office hours – every week day 0830 to 1730.


Latest Articles

to DPIA or not to DPIA

What is a DPIA? A Data Protection Impact Assessment (DPIA) is a process to help you identify and minimise the data protection risks of a project.... Read MoreI

GDPR Radio – News & Views

During today’s session of GDPR Radio, we discussed the news of the week from the world of Data Protection. We kicked off the webinar by... Read MoreI

What is the Freedom of Information Act?

The Freedom of Information Act 2000 (FOI) provides the public with access to information held by public authorities. The FOI requires public authorities to publish... Read MoreI

skills shortage in the privacy space?

I’ve been reading about skills shortages in the news: HGV drivers, chefs, fruit pickers… and now that we have come to advertise several new posts... Read MoreI

Data Retention – Best Practices, Examples & More

We kicked off this session by discussing the news of the week, we spoke about online racism, Matt Hancock, wealth screening, ICO fines and more.... Read MoreI

GDPR Radio – News & Views

We host GDPR Radio every other Friday between 12:30-13:30, it’s a laid back, collaborative session where we discuss recent news, share our views and answer... Read MoreI